[logback-user] Does Logback v1.1.11 fix CVE-2017-5929?